Easymeeting HIPAA Information:
The Health Insurance Portability and Accountability Act (HIPAA) requires that health care entities take appropriate measures to control the use and disclosure of Protected Health Information (PHI) in order to keep this information private and secure. A number of areas are covered by the Act's Security Rule, including Administrative Procedures, Physical Safeguards and Technical Security Mechanisms.
HIPAA applies to “covered entities” such as health care providers, and “business associates” who handle (e.g. use and/or store) HIPAA-protected information on their behalf. Because Easymeeting does not store HIPAA-protected information, we are considered a “conduit” for such information and not a “business associate.”
Easymeeting does not store, use, or disclose PHI as defined in the Act, and therefore, falls outside its remit. However, it is possible that the Easymeeting virtual meeting room might be used to transmit PHI between participants in a conference, for example if a particular medical record is being presented. Easymeeting implements industry-standard encryption protocols, including 128-bit AES. Use of such encryption is one of the Technical Security Mechanisms outlined in the Act, thus helping organizations satisfy the requirements of the Security Rule when implementing Easymeeting as part of their infrastructure.